Report - www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=

Report Overview

Submitted URL
www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
IP
162.214.92.166
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2024-05-10 20:41:22
Access
public
Website Title
RBC Royal Bank - Sign In to Online Banking
Final URL
www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.pinturasycolores.com	unknown	2014-10-21	2015-04-14	2023-11-01	22 kB	454 kB	162.214.92.166

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed
2024-05-10	medium	pinturasycolores.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	unknown	19 B	2023-04-16	2024-05-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 07:36:46 Last Seen2024-05-22 18:48:43 Times Seen261 Hash e339b13c0075b47dc78a0b4ca51ce344 eae081a0179a8a92f1087e57a93fe2ab26fdfd82 cd6864f90e1cc866b2361ab5e0a3742ccc9a42aefb419eff5a372e12575e7bca Loading...

	unknown	20 B	2023-04-16	2024-05-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 07:36:46 Last Seen2024-05-22 18:48:44 Times Seen250 Hash 91892437860bea7590a08cff86d25ceb c71afb5b27da167c1d9e4f2f3d0f855f732a9b9f d78f69b150161a4e05a958d72fd4e0913adf6a1c5039c36bb01a5a139752714d Loading...

	unknown	17 B	2023-04-16	2024-05-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 07:36:46 Last Seen2024-05-22 18:48:44 Times Seen261 Hash 1a1c03d5d4ef152f99e22085f7b53130 be5841ae80bfedd5d0950983dd7db81e0c4ed4fb a3421da39df5ea12a9a00ec9fdc10649e75694f90faa5d732f3cc123f206e6a3 Loading...

	unknown	15 B	2023-04-16	2024-05-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 07:36:46 Last Seen2024-05-22 18:48:43 Times Seen258 Hash 0e0e623852b0ab0ac01633336b294904 0f5e442fe3a57dbd79bb2efea75337fa4cea3361 115ef182c8734894c416eb481309bd35458309853ff438325f3e711192b9af7b Loading...

HTTP Transactions (37)

URL IP Response Size

www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=

162.214.92.166

200 OK

32 kB

URL User Request GET HTTP/1.1
www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (3154), with CRLF line terminators
Size
32 kB (32027 bytes)
Hash
23dfbbb3a5944c883995d44d54dc908e
c29934e1a91100f18f4e399945b0b509b07e9904
cf7a05072259957f1be92eaf1bd515101950a82e8fe6392b24e56a82b530f383

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr= HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.pinturasycolores.com/home/config/assets/notifications.css

162.214.92.166

200 OK

17 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/notifications.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text
Size
17 kB (17049 bytes)
Hash
7ab1a24d3b5a81d39ba0c01cd417cc03
32ae19638b07f9e51930d4036ad851e1c655cbce
c4b5fc6bc8f725dafc53ce514bbb534601032af8974433ed7ba51ffcfb3cf48a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/notifications.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 17049
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/rbc-icons.css

162.214.92.166

200 OK

3.6 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/rbc-icons.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text
Size
3.6 kB (3593 bytes)
Hash
84ead8beefefb5761cdf8e6f7bde4f37
73af3e2c36d15d237574f95d335a4b969c365024
e0e6932375c29bda3f3744a58670330d3365c07c272bc7bd35e3e65ba4d728c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/rbc-icons.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 3593
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/fonts.Roboto.css

162.214.92.166

200 OK

1.9 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/fonts.Roboto.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text
Size
1.9 kB (1938 bytes)
Hash
5eefd31e72ec736b03fe334654156a21
6f1a6b6a7e46c294353589d3bcff6b58b48479fc
2333cb8b3ab646c9e04b7762c7744fdd07d4aa0244983c2974503ba1c03915d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/fonts.Roboto.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 1938
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/fonts.Fira_Sans.css

162.214.92.166

200 OK

1.4 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/fonts.Fira_Sans.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text
Size
1.4 kB (1422 bytes)
Hash
a44b7fc4522b99b2f2df0ead6534363b
fce6099431e51b9c0ec7a837dcb08a34814291f4
7b9888ed7833ff1748767371208b65741231e6690eb2bae3493964a796950f02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/fonts.Fira_Sans.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 1422
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/master.css

162.214.92.166

200 OK

22 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/master.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text, with very long lines (376), with CRLF line terminators
Size
22 kB (22443 bytes)
Hash
f92c3fd3cb4fe5a613df46ca2d513b73
82f89e2b726903ddd5df73b9b73f9ba12c7d69cf
c9654118a2efbcc8274a122d6318639dae5814a40338fb0922112b08326f2914

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/master.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 22443
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/main.css

162.214.92.166

200 OK

19 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/main.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
Unicode text, UTF-8 text, with very long lines (632), with CRLF line terminators
Size
19 kB (18770 bytes)
Hash
0c601c0e279ea5e8c7bad027eb1180aa
7aed9a2abf470df53c3535d5bfbf54cbf6b48716
e02a33051be2e3d022eb9b299dd36098b60a568447a623220b1f5877cd0b740e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/main.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 18770
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/ibsignin.css

162.214.92.166

200 OK

27 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/ibsignin.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text, with CRLF line terminators
Size
27 kB (27313 bytes)
Hash
ba446ce6f96b51ec6e2623c75641888e
fb3197c199bd9a00cf73e5d684c0e8627bd39fc9
38a9c1e0bdbb7fd3ab2f5082d661df56ff2676e29585a557fbfcc81bd5109936

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/ibsignin.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 27313
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/desktop.css

162.214.92.166

200 OK

12 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/desktop.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text, with very long lines (11450)
Size
12 kB (11451 bytes)
Hash
71bc4ca2e5bc639b66dd2871db7d4a23
78b0767159bb5a85c50742cab328cbeae48728fa
1d782ae86ff6115e3b01df63028fb75eb823ec0516ee9cfdb9d78960f6e8ade4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/desktop.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 11451
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/font-awesome.min.css

162.214.92.166

200 OK

27 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/font-awesome.min.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text, with very long lines (26548)
Size
27 kB (26711 bytes)
Hash
0831cba6a670e405168b84aa20798347
05ea25bc9b3ac48993e1fee322d3bc94b49a6e22
936ffccdc35bc55221e669d0e76034af76ba8c080c1b1149144dbbd3b5311829

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/font-awesome.min.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 26711
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/bootstrap.min.css

162.214.92.166

200 OK

123 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/bootstrap.min.css
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
ASCII text, with very long lines (65371)
Size
123 kB (122571 bytes)
Hash
1692be651093fd3840f1471a611416a7
811f84d243e0340a38a52c50bd5964fd4bbfa432
17cd634b86f0c258a2ff12b514d4a7bd72ccf32cfaae5285488768854ed3ef3f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/bootstrap.min.css HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:57 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 122571
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.pinturasycolores.com/home/config/assets/rbc-icons.woff2

162.214.92.166

200 OK

14 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/rbc-icons.woff2
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14244, version 1.0
Size
14 kB (14244 bytes)
Hash
9d4b12ef74f70f8a7e978df1b0bc5d26
31a1d716c1322780ee367114023417741fede63f
d96aa24745416f71ce3f0dffea32971e52793c1fc2059005b1ab90819fa72e15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/rbc-icons.woff2 HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/rbc-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 14244
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2

www.pinturasycolores.com/home/config/assets/roboto-v18-latin-ext-500.woff2

162.214.92.166

200 OK

22 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/roboto-v18-latin-ext-500.woff2
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22096, version 1.0
Size
22 kB (22096 bytes)
Hash
89044585f8804da1ed89551178cc7c8f
05b9c54cd203be2aed112490e95a3c7ab8bcab01
d0759263025ff6b8f33da27562e5f1fa2194294bd70a26240fa13fe3b97ccf4d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/roboto-v18-latin-ext-500.woff2 HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/fonts.Roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 22096
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

www.pinturasycolores.com/home/config/assets/roboto-v18-latin_latin-ext-regular.woff2

162.214.92.166

200 OK

22 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/roboto-v18-latin_latin-ext-regular.woff2
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21920, version 1.0
Size
22 kB (21920 bytes)
Hash
e5d046dd2c38f8e9a1f2f1130e4ec9fc
ee3d9449d668da1bbeaf63f9c738d240b5340c29
f9bc132980c62433dfd76631f5a602fd1bf318141d67ebb6b70b4d3cc92555b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/roboto-v18-latin_latin-ext-regular.woff2 HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/fonts.Roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 21920
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

www.pinturasycolores.com/home/config/assets/rbc-icons.ttf?9w1q4o

162.214.92.166

200 OK

8.1 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/rbc-icons.ttf?9w1q4o
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, rbc-icons
Size
8.1 kB (8100 bytes)
Hash
9293702a3142a80ac8ca6128dfdf4f04
05c9934e8a71006c30a85f6fce25aa3dda40d2f8
bd9f2a9bacc79d0c23c957e53f8ccb9d344f05be3bdcab7494e748aab37b42e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/rbc-icons.ttf?9w1q4o HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/rbc-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 8100
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/ttf

www.pinturasycolores.com/home/config/assets/roboto-v18-latin_latin-ext-300.woff2

162.214.92.166

200 OK

22 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/roboto-v18-latin_latin-ext-300.woff2
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21940, version 1.0
Size
22 kB (21940 bytes)
Hash
3cb9e8d5c02f6f269785d5722d57e0d5
005c6ab45ccca08d2a14f909e255d031093e79e2
2b56e3544de25a2bc015f2df367a527d3e1f5691510605d7cb5d06d8c2e7fd6d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/roboto-v18-latin_latin-ext-300.woff2 HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/fonts.Roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 21940
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

www.pinturasycolores.com/home/config/assets/warning-32.svg

162.214.92.166

200 OK

1.6 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/warning-32.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1591 bytes)
Hash
940916f48f8dd564e66ae263bd0ac793
d3e4afd46f2a60ce2dd0ff7323d395429d541a29
997bad61367838159b58ee753c72bd96c10f44d4d8a959cf2dc6d43ccc1aa6d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/warning-32.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 1591
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/informational-32.svg

162.214.92.166

200 OK

1.9 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/informational-32.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
1.9 kB (1930 bytes)
Hash
ec9f310a4420fa48f3ba2ace280e53f9
ca719989d604dcb66be80b825d63f46463a5bb98
99749e070e21359e3d5e5f87fa56dbfa49a85d574fb8f2b21d49fe1e267b8f2c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/informational-32.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 1930
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/fira-sans-v8-latin_latin-ext-regular.woff2

162.214.92.166

200 OK

43 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/fira-sans-v8-latin_latin-ext-regular.woff2
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
Web Open Font Format (Version 2), TrueType, length 42728, version 1.0
Size
43 kB (42728 bytes)
Hash
5b9e06123d343a97609dcda40b09e6f0
0239515686aab1e83996201c8a6d2996528f87b0
128376a684bdd753a94481e70b3f65ab665afb60d56eca7263d9c5ad87e5e3dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/fira-sans-v8-latin_latin-ext-regular.woff2 HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/fonts.Fira_Sans.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 42728
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2

www.pinturasycolores.com/home/config/assets/canada.svg

162.214.92.166

200 OK

836 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/canada.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
836 B (836 bytes)
Hash
4f5467954b31d310b4cc4d7b8391aecd
f9335ff0f90a75fd106396be45150370af7d8b97
78920a7468b87496f5d9d3e5ec2bae5ba070c741c6d71eb1e7b3214a92bb353c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/canada.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 836
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/search-signin.svg

162.214.92.166

200 OK

508 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/search-signin.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
508 B (508 bytes)
Hash
c655a5df35701c438c1889ab136570ca
ad146d67d2a5af275b6b9b0892892b3a3a62bc0b
6a4cefca46eb1ca796a81fd90f6c8a5c5dc4a8526bde1a9634a833b47221bb3c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/search-signin.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 508
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/close-blue.svg

162.214.92.166

200 OK

440 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/close-blue.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
440 B (440 bytes)
Hash
6eac16cda46f88c8844574192566cae7
015cbe7a1fe7eade0c8dff7c1443452754493a05
f072f948a69fa01073e7561ffc54019409436fff0deee7c868ca670b2f4b849b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/close-blue.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 440
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/to-top-white.svg

162.214.92.166

200 OK

443 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/to-top-white.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
443 B (443 bytes)
Hash
f08049412ff7fe70dd707cb5e6cac152
7fad21ac003263d473808b60091e745aaf1b9aee
a51aaa34a0ed0bbfa7cd4cbfb5060f0c0a277825702f9f87ec921bb1deb0022d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/to-top-white.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 443
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/chevron.png

162.214.92.166

200 OK

149 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/chevron.png
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
PNG image data, 16 x 8, 8-bit/color RGBA, non-interlaced
Size
149 B (149 bytes)
Hash
d7d592e60a7a4709c5e423be0d72d0bf
a62478f76b0e90b3d9d13436c53914a9d693109f
463c807898d95421f1d1b08aa1cf30873aa2cfeec128f65946107a2d27700f5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/chevron.png HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/master.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 149
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.pinturasycolores.com/home/config/assets/external-link-small.svg

162.214.92.166

200 OK

2.5 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/external-link-small.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
2.5 kB (2481 bytes)
Hash
a0793b972803b08736005a7616ea0994
db626fce668d8d499990fc42a375039e97b9c739
776c50dabbcf9967aef068d7ffa38e199a2b9a7e87697750a22ea70344072f32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/external-link-small.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/master.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 2481
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/external-link-small-blue.svg

162.214.92.166

200 OK

2.4 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/external-link-small-blue.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
2.4 kB (2446 bytes)
Hash
d112aedae0067af724c48056b10a1ee5
88bc8e3adc00c2858a316f8db092c839d7241ff5
8573659e2191285fd760e060f497bcb52a87936f8806251471dbefae13795ca0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/external-link-small-blue.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/master.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 2446
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/tool-tip.svg

162.214.92.166

200 OK

401 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/tool-tip.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
401 B (401 bytes)
Hash
a1c03dd0dbaa38b86a427ca61a65e67f
c9a52d43a122cffb4ba7a651e141efb64d0b9064
275675a709514d5633a1efa70fdb67ba22adefed11b92192871b4677737400d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/tool-tip.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:58 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 401
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/chevron-right-blue.svg

162.214.92.166

200 OK

406 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/chevron-right-blue.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
406 B (406 bytes)
Hash
9a5022c7a1c25f1bc4c2a265cc3c2668
21814919e627013c1ec8b5fab9d44ff54bef7885
c9513114da2af977bb1bf1421d54e4906ba8439ed9f036a1f3b42506204df827

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/chevron-right-blue.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 406
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/angle-right-small.svg

162.214.92.166

200 OK

2.2 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/angle-right-small.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2206 bytes)
Hash
a9945a7116003939220b44909e8cd17f
46f64abbb7090eee378a2220430402829cc123ae
169b2c80c3cf9bba841ccd21f0a32cd56cf82b55917b228f0d9354fa5e312479

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/angle-right-small.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 2206
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/lock-small.svg

162.214.92.166

200 OK

1.9 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/lock-small.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
1.9 kB (1874 bytes)
Hash
05425f2c3edbf046be411e576eea957e
07836159adc932063290cc3ac95b77745492b8e5
208bd303e33d60639dbebdf5a93db4f0fb2999bda5c34bb8408679bbb8243197

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/lock-small.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 1874
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/chevron-right-white.svg

162.214.92.166

200 OK

427 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/chevron-right-white.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
427 B (427 bytes)
Hash
100b6982441a3232d161ed46e0b49321
eb852738d68236128e1fc55483f448f6c24497a4
1c323c6269a284f42a11ab70483a7ef20003570cde175735da4b1e2b0d12b5a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/chevron-right-white.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 427
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/triangle-down-white.svg

162.214.92.166

200 OK

398 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/triangle-down-white.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
398 B (398 bytes)
Hash
43bc422afef5143b5cc576c9b26b8338
aefb044d9c34d103a3a836569511e1f6a759ba72
657af7581552bd71f795ce717ae163c62507c7fc12dfefae0cf4ed4811f3f2eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/triangle-down-white.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 398
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/search-signin-dark.svg

162.214.92.166

200 OK

511 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/search-signin-dark.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
511 B (511 bytes)
Hash
fc26d1485e0d4bfda7c9e66d1f076ace
618449b77860dd995a104c3feb18c2fcf91071e7
ab1cb266438fab7e955f1a9bd0f257078f86e99659286b7953bf86158b2b25ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/search-signin-dark.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/assets/ibsignin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 511
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/logo_rbc-royalbank-white-en.svg

162.214.92.166

200 OK

5.5 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/logo_rbc-royalbank-white-en.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
5.5 kB (5474 bytes)
Hash
82addeb4458834be1050a3ae7f0d5be8
cbe76ad9cc0382fb195c639ea03a8be24e0223b7
4ad25cca003756c56d16dbc0b68bc7bf4449a33aeb046eb4d0552990a2cfdb9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/logo_rbc-royalbank-white-en.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 5474
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/logo-rbc-shield.svg

162.214.92.166

200 OK

5.2 kB

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/logo-rbc-shield.svg
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
SVG Scalable Vector Graphics image
Size
5.2 kB (5181 bytes)
Hash
d9ef8075ce937b74b04b890b599ba4b6
229ef9925fe592fdf0e49d4f92a96f80f9efcf55
65810b2abb5357e9d521f65bc4270894f90cb4f531b9d48bd202e3562920bfde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/logo-rbc-shield.svg HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 5181
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml

www.pinturasycolores.com/home/config/assets/tooltipPeak.png

162.214.92.166

200 OK

259 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/tooltipPeak.png
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
PNG image data, 10 x 19, 8-bit/color RGBA, non-interlaced
Size
259 B (259 bytes)
Hash
dd0a08eddf25d2faca83dc3b1dbf2409
f9efa80754803207dd63d3742a110d7a964caf12
5ebd4e99e10ea98455582e5949a0d1bda24645b23971cd3e322eeea55f9b1c48

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/tooltipPeak.png HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 259
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.pinturasycolores.com/home/config/assets/favicon.ico?14

162.214.92.166

200 OK

894 B

URL GET HTTP/1.1
www.pinturasycolores.com/home/config/assets/favicon.ico?14
IP
162.214.92.166:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Certificate
IssuerLet's Encrypt
Subjectpinturasycolores.com
Fingerprint1D:F9:A6:7F:72:54:C8:44:7E:5C:10:7A:0B:C8:68:7B:36:D3:61:C6
ValidityTue, 09 Apr 2024 13:59:36 GMT - Mon, 08 Jul 2024 13:59:35 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel
Size
894 B (894 bytes)
Hash
318790dab1f2fc38b31d1e9d2f61938b
20149f8c9f8bd610ac75da7f9b34c60f1d1f38b5
d2cb7cc01a7895378cb9c907c3f912085f2ea7f2fa14aabb5f7638b631c6ec0b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/config/assets/favicon.ico?14 HTTP/1.1
Host: www.pinturasycolores.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.pinturasycolores.com/home/config/log1.php?HrOZhSUkX52PER0X8NDuh3lKsUvDYPWleEXU9nURQSwpZO6vPhFAStMkCMNH5I8fP6iDVEJG1gdNdqxcjEuHnPaEP2ScNYKsXV9aHCng1K1JLgHUIvdDE2XFAJ7qFH8wEgTRDz1Ukpnj2PMKIiz1mr=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:40:59 GMT
Server: Apache
Last-Modified: Wed, 08 May 2024 14:52:39 GMT
Accept-Ranges: bytes
Content-Length: 894
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/x-icon

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (37)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash